ELSA-2022-1781 - grafana security, bug fix, and enhancement update
| Type: | SECURITY |
| Severity: | LOW |
| Release Date: | 2022-05-17 |
Description
[7.5.11-2]
- resolve CVE-2021-44716 golang: net/http: limit growth of header canonicalization cache
- resolve CVE-2021-43813 grafana: directory traversal vulnerability for *.md files
[7.5.11-1]
- update to 7.5.11 tagged upstream community sources, see CHANGELOG
- resolve CVE-2021-39226
[7.5.10-1]
- update to 7.5.10 tagged upstream community sources, see CHANGELOG
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 8 (aarch64) | grafana-7.5.11-2.el8.src.rpm | 792794d570ca9f2ab1e16570a365b6f6 | - |
| grafana-7.5.11-2.el8.aarch64.rpm | 4321b5b352eaf097f2c2281868db38bb | - |
|
| Oracle Linux 8 (x86_64) | grafana-7.5.11-2.el8.src.rpm | 792794d570ca9f2ab1e16570a365b6f6 | - |
| grafana-7.5.11-2.el8.x86_64.rpm | 60db80e3f8b71085752f925e86166d40 | - |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
